Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Cvelist
Cvelistadded 2026/04/14 10:10 p.m.15 views

CVE-2026-34454 OAuth2 Proxy: Session cookie not cleared when rendering sign-in page

OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 providers. A regression introduced in 7.11.0 prevents OAuth2 Proxy from clearing the session cookie when rendering the sign-in page. In deployments that rely on the sign-in page as part of their logout flow, a user may be...

3.5CVSS0.00011EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/11/25 12:0 a.m.1 views

PT-2024-9293 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 13.2.4 through 17.4.5 GitLab CE/EE versions 17.5 through 17.5.3 GitLab CE/EE versions 17.6 through 17.6.1 Description: A denial of service DoS condition was discovered in GitLab CE/EE. This issue is related to inefficien...

7.5CVSS6.5AI score0.00143EPSS
Exploits0References15
OSV
OSVadded 2024/07/24 5:15 p.m.0 views

UBUNTU-CVE-2024-41110

Moby is an open-source project created by Docker for software containerization. A security vulnerability has been detected in certain versions of Docker Engine, which could allow an attacker to bypass authorization plugins AuthZ under specific circumstances. The base likelihood of this being...

9.9CVSS6.6AI score0.03345EPSS
Exploits0References7
SUSE CVE
SUSE CVEadded 2023/02/15 5:52 a.m.1 views

SUSE CVE-2011-2501

The pngformatbuffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 allows remote attackers to cause a denial of service application crash via a crafted PNG image that triggers an out-of-bounds read during the copying of...

6.5CVSS8.2AI score0.02245EPSS
Exploits1References3
OSV
OSVadded 2019/07/23 1:15 p.m.0 views

UBUNTU-CVE-2019-10173

It was found that xstream API version 1.4.10 before 1.4.11 introduced a regression for a previous deserialization flaw. If the security framework has not been initialized, it may allow a remote attacker to run arbitrary shell commands when unmarshalling XML or any supported format. e.g. JSON...

9.8CVSS7.3AI score0.92761EPSS
Exploits8References4
RedHat Linux
RedHat Linuxadded 2010/06/07 3:37 p.m.1 views

perl: File:: Path rmtree race condition (CVE-2004-0452) reintroduced after upstream rebase to 5.8.8-1

Race condition in the rmtree function in File::Path 1.08 lib/File/Path.pm in Perl 5.8.8 allows local users to to delete arbitrary files via a symlink attack, a different vulnerability than CVE-2005-0448, CVE-2004-0452, and CVE-2008-2827. NOTE: this is a regression error related to CVE-2005-0448. ...

6.9CVSS6.7AI score0.00101EPSS
Exploits5References4
OSV
OSVadded 2008/11/20 12:0 a.m.6 views

DTSA-178-1 liquidsoap - version regression with DTSA-177-1

Bulletin has no description...

6.9CVSS6.4AI score0.00028EPSS
Exploits1
Rows per page
Query Builder